/Thinktecture.IdentityModel.45

Helper library for identity & access control in .NET 4.5 and MVC4/Web API.

Primary LanguageC#OtherNOASSERTION

Thinktecture.IdentityModel.45

Helper library for identity & access control in .NET 4.5 and MVC4/Web API.

Features

Base

  • Base64Url encoding
  • Epoch Date Time conversion
  • Random number generation
  • Time-constant string comparison
  • Certificate Store Access
  • Useful constants when dealing with algorithms, date time formats, JWT, SWT, WS-Security & WS-Trust

Claims

  • Anoynmous claims principal
  • Authentication instant claim
  • Claims-based authorization
  • ClaimsPrincipal factory

Extension Methods

  • XML (to and from XmlReader, XmlDocument, XDocument)
  • WS-Trust RSTRs
  • Security token conversion
  • X.509 Certificates

Web API and HTTP Security

  • Extensible authentication framework for Web API that supports SAML 1.1/2.0, JWT, Access Keys, Basic Authentication
  • Embeddable token endpoint
  • Claims transformation
  • Implementation of the Hawk authentication scheme
  • Scope-based authorization
  • OAuth2 client library

Web

  • Cookie protection
  • CORS
  • Anti-clickjacking

ASP.NET Passive Federation

  • Configuring session token lifetime
  • Sliding sessions
  • Overriding WS-Federation token lifetime
  • Configuring persistent session token cookies
  • Configuring machine key protection of session tokens
  • Suppress login redirects for API clients
  • Suppressing session token validation exceptions
  • Server-side session token caching
  • Dynamic issuer name registry direct from STS federation metadata

WS-Trust

  • Helper classes for WCF
  • WS-Trust bindings

Resources

see the [wiki] (https://github.com/thinktecture/Thinktecture.IdentityModel.45/wiki) for more resources.